Systems and methods involving aspects of hardware virtualization such as hypervisor, detection and interception of code or instruction execution including API calls, and/or other features

ABSTRACT

Systems, methods, computer readable media and articles of manufacture consistent with innovations herein are directed to computer virtualization, computer security and/or memory access. According to some illustrative implementations, innovations herein may utilize and/or involve a separation kernel hypervisor which may include the use of a guest operating system virtual machine protection domain, a virtualization assistance layer, and/or a instruction execution detection/interception mechanism (which may be proximate in temporal and/or spatial locality to malicious code, but isolated from it). The instruction execution detection/interception mechanism may perform processing, inter alia, for detection and/or notification of, and actions upon by a monitoring guest, code execution by a monitored guest involving predetermined physical memory locations, such as API calls. Such actions may include interception of API calls within the monitored guest and simulation thereof by the monitoring guest or another authorized guest.

CROSS-REFERENCE TO RELATED APPLICATION INFORMATION

This is a continuation of application Ser. No. 14/714,241, filed May 15,2015, published as US2015/0334126A1, now U.S. Pat. No. 9,203,855, whichclaims benefit/priority of U.S. provisional patent application No.61/993,296, filed May 15, 2014, all of which are incorporated herein byreference in entirety.

BACKGROUND

Field

Innovations herein pertain to computer software and hardware, computervirtualization, computer security and/or data isolation, and/or the useof a separation kernel hypervisor (and/or hypervisor), such as to detectand/or process information, including notification(s), interception andother processing regarding code/instruction execution by guest software,such as API calls, and which may include or involve guest operatingsystem(s).

Description of Related Information

In computer systems with hypervisors supporting a guest operatingsystem, there exist some means to monitor the guest operating system formalicious or errant activity.

In a virtualized environment, running under control of a hypervisor, asuitably authorized guest may be allowed to monitor the activities ofanother guest. Among the reasons for such monitoring are debugging andsecurity. However, previous approaches for monitoring other guests mayinclude various drawbacks, such as allowing guests to poll the memoryand other information within the monitored guest.

Due to the constantly evolving nature of malicious code, however, suchsystems face numerous limitations in their ability to detect and defeatmalicious code. One major limitation is the inability of a hypervisor todefend itself against malicious code; e.g., the particular hypervisormay be subverted by malicious code and/or may allow malicious code in aguest operating system to proliferate between a plurality of guestoperating systems in the system.

To solve that issue, the motivation and use of a Separation KernelHypervisor is introduced in environments with malicious code. TheSeparation Kernel Hypervisor, unlike a hypervisor, does not merelysupport a plurality of Virtual Machines (VMs), but supports more secure,more isolated mechanisms, including systems and mechanisms to monitorand defeat malicious code, where such mechanisms are isolated from themalicious code but are also have high temporal and spatial locality tothe malicious code. For example, they are proximate to the maliciouscode, but incorruptible and unaffected by the malicious code.

Furthermore the Separation Kernel Hypervisor is designed and constructedfrom the ground-up, with security and isolation in mind, in order toprovide security and certain isolation between a plurality of softwareentities (and their associated/assigned resources, e.g., devices,memory, etc.); by mechanisms which may include Guest Operating SystemVirtual Machine Protection Domains (secure entities established andmaintained by a Separation Kernel Hypervisor to provide isolation intime and space between such entities, and subsets therein, which mayinclude guest operating systems, virtualization assistance layers, anddetection mechanisms); where such software entities (and theirassociated assigned resources, e.g., devices, memory, etc., arethemselves isolated and protected from each other by the SeparationKernel Hypervisor, and/or its use of hardware platform virtualizationmechanisms.

Additionally, where some hypervisors may provide mechanisms tocommunicate between the hypervisor and antivirus software, or monitoringagent, executing within a guest operating system, the hypervisor is notable to prevent corruption of the monitoring agent where the agent iswithin the same guest operating system; or the guest operating system(or any subset thereof, possibly including the antivirus software,and/or monitoring agent) may be corrupted and/or subverted.

Finally, while some known systems and methods include implementationsinvolving virtualized assistance layers and separation kernelhypervisors to handle various malicious code intrusions, such systemsand method possess drawbacks with regard to handling and/or interceptingcertain specified attacks, such as those related to API calls.

Overview of Some Aspects

Systems, methods, computer readable media and articles of manufactureconsistent with innovations herein are directed to computervirtualization, computer security and/or data isolation, and/or the useof a separation kernel hypervisor (and/or hypervisor), such as todetect, process information, provide notification and/or interceptionfeatures regarding code/instruction execution in specified physicalmemory location(s) by guest software and which may include or involveguest operating system(s). Information may further be obtained regardingthe context of such code/instruction execution, the flow of executionwithin the guest may be controlled, and the context of the guest may bechanged. Here, for example, certain implementations may include asuitably authorized guest running under control of a hypervisor andinvolving features of being immediately notified of another guestexecuting code at specified physical memory location(s). Upon access themonitoring guest may be provided with execution context information fromthe monitored guest. Further, the flow of execution within the guest maybe controlled and/or the context of the guest may be changed.

According to some illustrative implementations, innovations herein mayutilize and/or involve a separation kernel hypervisor which may includethe use of a guest operating system virtual machine protection domain, avirtualization assistance layer, and/or an instruction (or code)execution detection/interception mechanism (which may be proximate intemporal and/or spatial locality to subject code, but isolated from it),inter alia, for detection, interception etc of code/instructionexecution by guest software in specified memory locations. In someimplementations, for example, a suitably authorized guest may obtainimmediate notification if another guest it is monitoring executes codeat specified physical memory location(s). Upon such access, themonitoring guest may be provided with execution context information fromthe monitored guest. Further, the monitored guest may be paused untilthe monitoring guest provides a new execution context to the monitoredguest, whereupon the monitored guest resumes execution with the newcontext. Additionally, as indicated herein, the flow of execution withinthe guest may be controlled and/or the context of the guest may bechanged such that, e.g., API calls within the guest may be interceptedand simulated by the authorized guest.

It is to be understood that both the foregoing general description andthe following detailed description are exemplary and explanatory onlyand are not restrictive of the inventions, as described. Furtherfeatures and/or variations may be provided in addition to those setforth herein. For example, the present inventions may be directed tovarious combinations and subcombinations of the disclosed featuresand/or combinations and subcombinations of several further featuresdisclosed below in the detailed description.

BRIEF DESCRIPTION OF THE DRAWINGS

The accompanying drawings, which constitute a part of thisspecification, illustrate various implementations and features of thepresent innovations and, together with the description, explain aspectsof the inventions herein. In the drawings:

FIG. 1 is a block diagram illustrating an exemplary system andSeparation Kernel Hypervisor architecture consistent with certainaspects related to the innovations herein.

FIG. 2A is a block diagram illustrating an exemplary system andSeparation Kernel Hypervisor architecture consistent with certainaspects related to the innovations herein.

FIG. 2B is a block diagram illustrating an exemplary system andSeparation Kernel Hypervisor architecture consistent with certainaspects related to the innovations herein.

FIG. 2C is a block diagram illustrating an exemplary system andSeparation Kernel Hypervisor architecture consistent with certainaspects related to the innovations herein.

FIG. 2D is a block diagram illustrating an exemplary system andSeparation Kernel Hypervisor architecture consistent with certainaspects related to the innovations herein.

FIG. 3 is a block diagram illustrating an exemplary system andseparation kernel Hypervisor architecture consistent with certainaspects related to the innovations herein.

FIG. 4 is a block diagram illustrating an exemplary system andseparation kernel hypervisor architecture consistent with certainaspects related to the innovations herein.

FIG. 5 is a block diagram illustrating an exemplary system andseparation kernel hypervisor architecture consistent with certainaspects related to the innovations herein.

FIGS. 6A-6B are representative sequence/flow diagrams illustratingexemplary systems, methods and separation kernel hypervisor architectureconsistent with certain aspects related to the innovations herein.

FIGS. 7A-7B are representative sequence/flow diagrams illustratingexemplary systems, methods and separation kernel hypervisor architectureconsistent with certain aspects related to the innovations herein.

FIG. 8 is a representative sequence diagram illustrating exemplarysystems, methods, and Separation Kernel Hypervisor architectureconsistent with certain aspects related to the innovations herein.

FIG. 9 is a representative flow diagram illustrating exemplarymethodology and Separation Kernel Hypervisor processing consistent withcertain aspects related to the innovations herein.

FIG. 10 is an exemplary state diagram illustrating aspects of memorymanagement unit processing in conjunction with the hypervisor and VAL,consistent with certain aspects related to the innovations herein.

FIG. 11 is a representative flow diagram illustrating exemplarymethodology and separation kernel hypervisor processing concerningexception-related instructions consistent with certain aspects relatedto the innovations herein.

DETAILED DESCRIPTION OF ILLUSTRATIVE IMPLEMENTATIONS

Reference will now be made in detail to the inventions herein, examplesof which are illustrated in the accompanying drawings. Theimplementations set forth in the following description do not representall implementations consistent with the inventions herein. Instead, theyare merely some examples consistent with certain aspects related to thepresent innovations. Wherever possible, the same reference numbers areused throughout the drawings to refer to the same or like parts.

To solve one or more of the drawbacks mentioned above and/or otherissues, implementations herein may relate to various detection,monitoring, notification(s), interception and/or prevention techniques,systems, and mechanisms, as may be used with a separation kernelhypervisor. Among other things, such systems and methods may includeand/or involve the use of the monitoring of the entirety, or suitablyconfigured subset thereof of guest operating system resources includingvirtualized resources, and/or “physical” or “pass-through” resources.Examples include monitoring of the virtual CPUs, its memory accessattempts to execute code involving specified memory such as monitoringand/or intercepting API calls within the guest.

With regard to certain implementations, in order to perform suchadvanced monitoring in a manner that maintains suitable performancecharacteristics in a system that may include a separation kernelhypervisor and a guest operating system, mechanisms such as a separationkernel hypervisor, a guest operating system virtual machine protectiondomain, virtual machine assistance layer, and/or instruction executiondetection/interception mechanisms, may be used to monitor a monitoredguest on a corresponding guest operating system.

Systems and methods are disclosed for detecting and/or notifyingexecuted code by guest software and which may include or involve guestoperating system(s). According to some implementations, for example, asuitably authorized guest running under control of a hypervisor mayrequest that it be notified of another guest executing code at aspecified physical memory location. Features of real-time notificationof, and action(s) regarding obtaining an execution context are providedto the monitoring guest upon access by the monitored guest to executedcode at specific physical memory locations. Here, monitoring may also beperformed in a timely and expeditious fashion, including by virtue ofthe monitoring context being proximate (in time and space) to themonitored context. Additionally, isolation may be maintained between themonitor and monitored context. Further, such monitoring may be performedby mechanisms providing a wide and comprehensive set of monitoringtechniques and resources under monitoring, inter alia, so as to monitoragainst threats which are multi-lateral and/or multi-dimensional innature.

According to some implementations, for example, a hypervisor isconfigured to allow a guest (monitoring guest) to request notificationsof code execution by another guest (monitored guest). The monitoringguest requests that a set of physical memory locations be monitored forcode execution, and the execution context data be returned on suchaccess. The virtualization assistance layer (VAL) in the monitored guestmaps (e.g., remaps, unmaps) those physical APIs containing thoselocations as non-executable. This is distinct from the monitored guest'snotion of API mappings. When software in the monitored guest attempts toexecute code involving an API call, for example, control transitions tothe VAL. The VAL determines that the address being executed is part ofthe set to be monitored. The VAL notifies the monitoring guest of theaccess and provides the monitoring guest with the execution context dataas configured for that access. Various innovative features involvingmapping (unmapping, re-mapping) and insertion of exception-causinginstruction(s) may be utilized. As such, the monitored guest is allowedto continue operation as though the API has always been mappedexecutable.

According to some implementations, for example, a separation kernelhypervisor (SKH) ensures the isolation of multiple guest OperatingSystems each in its own virtual machine (VM). The SKH may implement amechanism whereby a suitably authorized Monitoring Guest sends a list ofmemory locations to be monitored for another guest. Furthermore, each ofthe physical memory locations may be associated with a specification forthe execution context information to be obtained upon access to thememory location(s). The SKH may send to the other guests thespecification for the execution context information associated with thelist of memory locations. A Virtualization Assistance Layer of softwareruns within the same protection domain as the guest Virtual Machine butis not directly accessible by the guest. A Virtualization AssistanceLayer implements a virtual motherboard containing a virtual CPU andmemory. The VAL and mechanism may process exceptions caused bynon-executable API execution attempts by its associated guest virtualmachine. The VAL may determine whether the memory address accessed isone of those specified in the list of physical memory locations sent toanother guest. The VAL may send a notification of the memory access andassociated context information to the requesting guest.

Systems and methods are disclosed for providing secure informationmonitoring. According to some implementations, for example, suchinformation monitoring may be provided from a context not able to bebypassed, tampered with or by the context under monitoring. Here,monitoring may also be performed in a timely and expeditious fashion,including by virtue of the monitoring context being proximate (in timeand space) to the monitored context. Additionally, isolation may bemaintained between the monitor and monitored context. Further, suchmonitoring may be performed by mechanisms providing a wide andcomprehensive set of monitoring techniques and resources undermonitoring, inter alia, so as to monitor against threats which aremulti-lateral and/or multi-dimensional in nature.

In one exemplary implementation, there is provided a method of securedomain isolation, whereby an execution context within a virtual machinemay monitor another execution context within that virtual machine oranother virtual machine, in a manner maintaining security and isolationbetween such contexts. Innovations herein also relate to provision ofthese contexts such that neither/none can necessarily corrupt, affect,and/or detect the other.

Moreover, systems and methods herein may include and/or involve avirtual machine which is augmented to form a more secure virtualrepresentation of the native hardware platform for a particularexecution context. And such implementations may also include a virtualrepresentation which is augmented with a wide and deep variety ofbuilt-in detection, notification(s), monitoring and/or interceptionmechanisms, wherein secure isolation between the domains or virtualmachines is maintained.

In general, aspects of the present innovations may include, relate to,and/or involve one or more of the following aspects, features and/orfunctionality. Systems and methods herein may include or involve aseparation kernel hypervisor. According to some implementations, asoftware entity in hypervisor context that partitions the nativehardware platform resources, in time and space, in an isolated andsecure fashion may be utilized. Here, for example, embodiments may beconfigured for partitioning/isolation as between a plurality of guestoperating system virtual machine protection domains (e.g., entities in ahypervisor guest context).

The separation kernel hypervisor may host a plurality of guest operatingsystem virtual machine protection domains and may host a plurality ofmechanisms including instruction execution detection/interceptionmechanisms which may execute within such guest operating system virtualmachine protection domains. The instruction executiondetection/interception mechanisms may execute in an environment whereguest operating systems cannot tamper with, bypass, or corrupt theinstruction execution detection/interception mechanisms. The instructionexecution detection/interception mechanisms may also execute to increasetemporal and spatial locality of the guest operating system's resources.Further, in some implementations, the instruction executiondetection/interception mechanisms may execute in a manner that is notinterfered with, nor able to be interfered with, nor corrupted by otherguest operating system virtual machine protection domains includingtheir corresponding guest operating systems. The instruction executiondetection/interception mechanisms include, but are not limited to,performing one or more of the following actions on guest operatingsystems related to guest code execution at specified memory location(s),such as access to API calls including sensitive memory regions, and/oractions in response thereto such as performing various interceptionprocessing.

Where monitoring may include, but is not limited to, actions pertainingto observation, detection, mitigation, prevention, tracking,modification, reporting upon, of memory access within and/or by a guestoperating system and/or by entities configured to perform suchmonitoring for purposes which may be used to ascertain, and assist inascertaining, when suspect code, and/or code under general monitoring orinstrumented execution/debugging, unit test, regression test, or similarscrutiny, is or may be operating at specified memory location(s); or,therein, hiding and/or concealed, halted, stalled, infinitely looping,making no progress beyond its intended execution, stored and/or present(either operating or not), once-active (e.g., extinct/not present, buthaving performed suspect and/or malicious action), and otherwise havingbeen or being in a position to adversely and/or maliciously affect thehypervisor guest, or resource under control of the hypervisor guest.

The term “map” or “mapped” shall broadly mean: setting a memory pagewith any of the following properties applied to it (as set and enforcedby the hardware MMU via the SKH): mapped (present), executable,readable, writeable.

The term “unmap” or “unmapped” shall broadly mean: setting a memory pagewith any of the following properties applied to it (as set and enforcedby the hardware MMU via the SKH): unmapped (non-present),non-executable, non-readable, non-writeable.

FIG. 1 is a block diagram illustrating an exemplary system andseparation kernel hypervisor architecture consistent with certainaspects related to the innovations herein. FIG. 1 also shows aseparation kernel hypervisor executing on native hardware platformresources, e.g., where the separation kernel hypervisor may support theexecution, isolated and partitioned in time and space, between aplurality of guest operating system protection domains. Here, a guestoperating system domain may be an entity that is established andmaintained by the separation kernel hypervisor in order to provide asecure and isolated execution environment for software. Referring toFIG. 1, a separation kernel hypervisor 100 is shown executing on top ofthe native hardware platform resources 600. Further, the separationkernel hypervisor 100 supports the execution of a guest operating systemvirtual machine protection domain 200.

The separation kernel hypervisor 100 may also support the execution of aplurality of guest operating system virtual machine protection domains,e.g., 200 to 299 in FIG. 1. In some implementations, the separationkernel hypervisor may provide time and space partitioning in a secureand isolated manner for a plurality of guest operating system virtualmachine protection domains, e.g., 200 to 299 in FIG. 1. Such featuresmay include rigid guarantees on scheduling resources, execution time,latency requirements, and/or resource access quotas for such domains.

According to some implementations, in terms of the sequence ofestablishment, after the native hardware platform resources 600 boot thesystem, execution is transitioned to the separation kernel hypervisor100. The separation kernel hypervisor 100 then creates and executes aguest operating system virtual machine protection domain 200, or aplurality of guest operating system virtual machine protection domains,e.g., 200 to 299 in FIG. 1. Some implementations of doing so consonantwith the innovations herein are set forth in PCT Application No.PCT/2012/042330, filed 13 Jun. 2012, published as WO2012/177464A1, andU.S. patent application Ser. No. 13/576,155, filed Dec. 12, 2013,published as US2014/0208442 A1, which are incorporated herein byreference in entirety.

Consistent with aspects of the present implementations, it is within aguest operating system virtual machine protection domain that a guestoperating system may execute. Further, it is within a guest operatingsystem virtual machine protection domain that instruction executiondetection/interception mechanisms may also execute, e.g., in a fashionisolated from any guest operating system which may also execute withinthat same guest operating system virtual machine protection domain, orin other guest operating system virtual machine protection domains.

FIG. 2A is a block diagram illustrating an exemplary system andseparation kernel hypervisor architecture consistent with certainaspects related to the innovations herein. FIG. 2A also shows aseparation kernel hypervisor executing on native hardware platformresources (where the native platform resources may include a pluralityof CPUs, buses and interconnects, main memory, Network Interface Cards(NIC), Hard Disk Drives (HDD), Solid State Drives (SSD), GraphicsAdaptors, Audio Devices, Mouse/Keyboard/Pointing Devices, Serial I/O,USB, and/or Raid Controllers, etc.), where the separation kernelhypervisor may support the execution, isolated and/or partitioning intime and space, between a plurality of guest operating system protectiondomains. Here, some implementations may involve a guest operating systemprotection domains which may contain a guest operating system, and/or avirtualization assistance layer (which itself may contain instructionexecution detection/interception mechanisms).

FIG. 2A shows both a guest operating system 300, and a virtualizationassistance layer 400 executing within the same guest operating systemvirtual machine protection domain 200. In some implementations, thevirtualization assistance layer 400 may provide the executionenvironment for the instruction execution detection/interceptionmechanism(s) 500. Further, the virtualization assistance layer 400 mayassist the separation kernel hypervisor in virtualizing portions of theplatform resources exported to a given guest operating system (e.g.,Virtual CPU/ABI, Virtual chipset ABI, set of virtual devices, set ofphysical devices, and/or firmware, etc., assigned to a given guestoperating system 300 and/or guest virtual machine protection domain200). Some systems and methods herein utilizing such virtualizationassistance layer may include or involve (but are not strictly limitedto) a self-assisted virtualization component, e.g., with an illustrativeimplementation shown in FIG. 2D.

The guest operating system 300 and the virtualization assistance layer400, which may include instruction execution detection/interceptionmechanism(s) 500, are isolated from each other by the separation kernelhypervisor 100. In implementations herein, the guest operating system300 cannot tamper with, bypass, or corrupt the virtualization assistancelayer 400, nor can it tamper with, bypass or corrupt the instructionexecution detection/interception mechanisms 500. Since the instructionexecution detection/interception mechanisms 500 are isolated from theguest operating system 300, the instruction executiondetection/interception mechanisms 500 are able to act on a portion of(or the entirety, depending on policy and configuration) of the guestoperating system 300 and its assigned resources in a manner that is (a)is transparent to the guest operating system 300 and (b) not able to betampered with by the guest operating system 300 or its assignedresources (e.g., errant and/or malicious device DMA originated bydevices assigned to the guest operating system 300), and (c) not able tobe bypassed by the guest operating system 300. For example, theinstruction execution detection/interception mechanisms 500, within thegiven virtualization assistance layer 400, may read and/or modifyportions of the guest operating system 300 and resources to which theGuest Operating System 300 has been granted access (by the SeparationKernel Hypervisor 100), while none of the Guest Operating System 300 northe resources to which has access may modify any portion of theinstruction execution detection/interception mechanisms 500 and/orvirtualization assistance layer 400.

By having a given virtualization assistance layer 400 and a given GuestOperating System 300 within the within the same Guest Virtual MachineProtection Domain 200, isolated from each other by the Separation KernelHypervisor 100, various benefits, non-penalties, or mitigation ofpenalties, such as the following, may be conferred to the system atlarge and to the instruction execution detection/interception mechanisms500.

Increased Spatial and Temporal Locality of Data

By being contained within the same Guest Virtual Machine ProtectionDomain 300, the virtualization assistance layer 200, and/orcorresponding private (local) instruction executiondetection/interception mechanisms 500 existing in that same GuestVirtual Machine Protection Domain 300, have greater access, such as intime and space, to the resources of the Guest Operating System 300 thanwould entities in other guest virtual machine protection domains orother Guest Operating Systems; e.g., the subject guest virtual machineprotection domain has faster responsiveness and/or has lower latencythan if processed in another guest virtual machine protection domain.Though such resources are still accessed in a manner that is ultimatelyconstrained by the separation kernel hypervisor 100, there is lessindirection and time/latency consumed in accessing the resources:

In one illustrative case, the instruction executiondetection/interception mechanisms 500 private (local) to a given Guestvirtualization assistance layer 200 and its associated Guest OperatingSystem 300 can react faster to code execution physical memory accessissues, and not need to wait on actions from another entity in anotherguest virtual machine protection domain 200 or guest operating system300 (which may themselves have high latency, be corrupted, unavailable,poorly scheduled, or subject to a lack of determinism and/or resourceconstraint, or improper policy configuration, etc.).

Here, for example, if a Guest Operating System 300 was to monitor aGuest Operating System 399 located within another Guest Virtual MachineProtection Domain 107, it would encounter penalties in time and spacefor accessing that Guest Operating System and its resources;furthermore, there is increased code, data, scheduling, and/or securitypolicy complexity to establish and maintain such a more complex system;such increases in complexity and resources allow for more bugs in theimplementation, configuration, and/or security policy establishment andmaintenance.

Scalability and Parallelism

Each Guest Operating System 300 may have a virtualization assistancelayer 200, and instruction execution detection/interception mechanisms500, that are private (local) to the Guest Virtual Machine ProtectionDomain 200 that contains both that Guest Operating System 300, thevirtualization assistance layer 400, and the instruction executiondetection/interception mechanisms.

Fault Isolation, Low Level of Privilege, Defense in Depth, Locality ofSecurity Policy, and Constraint of Resource Access

Here, for example, relative to the extremely high level of privilege ofthe separation kernel hypervisor 100, the virtualization assistancelayer 400, the instruction execution detection/interception mechanism500, and the Guest Operating System 300 within the same Guest VirtualMachine Protection Domain 200 are only able to act on portions of thatGuest Virtual Machine Protection Domain 200 (subject to the SeparationKernel Hypervisor 100) and not portions of other Guest Virtual MachineProtection Domains (nor their contained or assigned resources).

Subject to the isolation guarantees provided by the Separation KernelHypervisor 100, the virtualization assistance layer 400 accesses onlythe resources of the Guest Operating System 300 within the same GuestVirtual Machine Protection Domain 200 and that virtualization assistancelayer 400 is not able to access the resources of other Guest OperatingSystems.

As such, if there is corruption (bugs, programmatic errors, maliciouscode, code and/or data corruption, or other faults, etc.) within a givenGuest Virtual Machine Protection Domain 200 they are isolated to thatGuest Virtual Machine Protection Domain 200. They do not affect otherGuest Virtual Machine Protection Domains 299 nor do they affect theseparation kernel hypervisor 100. This allows the separation kernelhypervisor to act upon (e.g., instantiate, maintain, monitor,create/destroy, suspend, restart, refresh, backup/restore, patch/fix,import/export etc.) a plurality of Guest Virtual Machine ProtectionDomains 200 and their corresponding virtualization assistance layer 400and instruction execution detection/interception mechanisms 500 (or evenGuest Operating Systems 300) without corruption of the most privilegedexecution context of the system, the separation kernel hypervisor 100.

Similarly, the faults that may occur within a virtualization assistancelayer 400 or the instruction execution detection/interception mechanisms500 (e.g., by corruption of software during delivery) are contained tothe Guest Virtual Machine Protection Domain 200 and do not corrupt anyother Guest Virtual Machine Protection Domain; nor do they corrupt theSeparation Kernel Hypervisor 100.

Furthermore, the faults within a Guest Operating System 300 arecontained to that Guest Operating System 300, and do not corrupt eitherthe virtualization assistance layer 400 or the instruction executiondetection/interception mechanisms 500.

FIG. 2B is a block diagram illustrating an exemplary system andseparation kernel hypervisor architecture consistent with certainaspects related to the innovations herein. FIG. 2B illustrates avariation of FIG. 2A where a minimal runtime environment 398 executes inplace of a (larger/more complex) guest operating system. Here, a minimalruntime environment may be an environment such as a VDS (virtual deviceserver), and/or a LSA (LynxSecure application), etc. The minimal runtimeenvironment 398 can be used for policy enforcement related to activitiesreported by a virtualization assistance layer and/or instructionexecution detection/interception mechanisms; such an environment is alsomonitored by a virtualization assistance layer and/or instructionexecution detection/interception mechanisms private to the guestoperating system virtual machine protection domain containing theminimal runtime environment.

FIG. 2C is a block diagram illustrating an exemplary system andseparation kernel hypervisor architecture consistent with certainaspects related to the innovations herein. FIG. 2C illustrates avariation of FIG. 2A and FIG. 2B where a minimal runtime environmentexecutes in place of a (larger/more complex) guest operating system butwithout a virtualization assistance layer or instruction executiondetection/interception mechanisms.

FIG. 2D is a block diagram illustrating an exemplary system andSeparation Kernel Hypervisor architecture consistent with certainaspects related to the innovations herein. FIG. 2D illustrates avariation of FIG. 2 where a self-assisted virtualization (SAV) mechanismis used to implement the virtualization assistance layer.

FIG. 3 is a block diagram illustrating an exemplary system andseparation kernel Hypervisor architecture consistent with certainaspects related to the innovations herein. FIG. 3 also shows certaindetailed aspects with respect to FIGS. 2A/B, where the guest operatingsystem may attempt to process API calls at specified memory locationsthat may include a plurality of code and/or data which may constituteexecution contexts which may include the following types of softwareincluding any/all of which malicious code may attempt to corrupt orutilize: malicious code, anti-virus software, corrupted anti-virussoftware, integrity checkers, corrupted integrity checkers, rootkits,return oriented rootkits, etc. The inventions herein are not limited tomemory access attempts to malicious code and is discussed below asillustrative examples.

For example, in FIG. 3, if antivirus software 2001 executes within agiven guest operating system 300, and such anti-virus software 2001 isitself corrupted, and itself executes malicious code 2002 or fails toprevent the execution of malicious code 2002, the corruption isconstrained to the given guest operating system 300, and the corruptionmay be acted upon (e.g., detected, notified, prevented, mitigated,reported, tracked, modified/patched, suspended, halted, restarted,eradicated, etc.) by the instruction execution detection/interceptionmechanisms 500 that monitors/acts on code execution in specified memorylocation(s) such as API calls, and is provided within the same guestvirtual machine protection domain 200 as the guest operating system 300.

With regard to other exemplary implementations, as may be appreciated inconnection with FIG. 3, if an integrity checker 2003 (e.g., a “security”component or driver within a guest operating system 300) executes withina given guest operating system 300, and such integrity checker 2003 isitself corrupted into a corrupted integrity checker 2004 (and executesmalicious code, or fails to prevent the execution of malicious code),the corruption is constrained to the given guest operating system 300,and the corruption may be acted upon (e.g., detected, notified,prevented, mitigated, reported, tracked, modified/patched, suspended,halted, restarted, eradicated, etc.) by the instruction executiondetection/interception mechanisms 500 that monitors/acts on codeexecuted at the specified memory location(s), and is provided within thesame guest virtual machine protection domain 200 as the guest operatingsystem 300.

With regard to another illustration, again with reference to FIG. 3, ifa rootkit 2006 executes within the guest operating system 300 (e.g., byhaving fooled the Integrity Checker 2003 by the nature of the root kitbeing a return oriented rootkit 2007, which are designed specifically todefeat integrity checkers) the corruption is constrained to the givenguest operating system 300, and the corruption may be acted upon (e.g.,detected, notified, prevented, mitigated, reported, tracked,modified/patched, suspended, halted, restarted, eradicated, etc.) by theinstruction execution detection/interception mechanisms 500 thatmonitors/acts on code execution in specified memory location(s), and isprovided within the same guest virtual machine protection domain 200 asthe guest operating system 300.

In another example, again with respect to FIG. 3, if a polymorphic virus2005 (an entity designed to defeat integrity checkers, among otherthings) executes within the guest operating system 300 (e.g., by havingfooled the integrity checker 2003, or by having the a corruptedintegrity checker 2003) the corruption is constrained to the given guestoperating system 300, and the corruption may be acted upon (e.g.,detected, notified, prevented, mitigated, reported, tracked,modified/patched, suspended, halted, restarted, eradicated, etc.) by theinstruction execution detection/interception mechanisms 500 thatmonitors/acts on code execution in specified memory location(s), and isprovided within the same guest virtual machine protection domain 200 asthe guest operating system 300.

In general, referring to FIG. 3, if a malicious code 2000 executeswithin the guest operating system 300 (e.g., by means including, but notlimited strictly to bugs, defects, bad patches, code and/or datacorruption, failed integrity checkers, poor security policy, root kits,viruses, trojans, polymorphic viruses, and/or other attack vectorsand/or sources of instability within the guest operating system 300etc.), the corruption is constrained to the given guest operating system300, and the corruption may be acted upon (e.g., detected, notified,prevented, mitigated, reported, tracked, modified/patched, suspended,halted, restarted, eradicated, etc.) by the instruction executiondetection/interception mechanisms 500 that monitors/acts on codeexecution in specified memory location(s), and is provided within thesame guest virtual machine protection domain 200 as the guest operatingsystem 300.

Furthermore, in the examples above and other cases, such corruption ofthe guest operating system 300, and the resources to which it hasaccess, do not corrupt the instruction execution detection/interceptionmechanisms 500, the virtualization assistance layer 400, the guestvirtual machine protection domain 200, or plurality of other suchresources in the system (e.g., other guest virtual machine protectiondomains 299), or the separation kernel hypervisor 100.

In some implementations, the instruction executiondetection/interception mechanisms 500, in conjunction with thevirtualization assistance layer 400, and the separation kernelhypervisor 100, may utilize various methods and mechanisms such as thefollowing, given by way of illustration and example but not limitation,to act with and upon its associated guest operating system 300 theresources assigned to the guest operating system 300, and the systemsbehavior generated thereto and/or thereby.

FIG. 4 is a block diagram illustrating an exemplary system andseparation kernel hypervisor architecture consistent with certainaspects related to the innovations herein. For example, FIG. 4illustrates resources that may be assigned to a Guest Operating System300 consistent with certain aspects related to the innovations herein.

FIG. 4 shows an illustrative extension of either FIG. 2, and/or FIG. 3,where the guest operating system may have a plurality of code and/ordata which may constitute execution contexts which may include thefollowing types of software mechanisms and/or constructs user space codeand data that may be associated with an unprivileged mode of CPU codeexecution (as used herein ‘user space’ being an execution environment oflow privilege, versus an execution environment of high privilege, suchas kernel space), which may contain processes, tasks, and/or threads,etc.; kernel space code and data, that may be associated with aprivileged mode of CPU execution, which may contain tasks, threads,interrupt handlers, drivers, etc.; shared code and data, that may beassociated with either privileged and/or unprivileged modes of CPUexecution, and which may include signal handlers, Inter ProcessCommunication Mechanisms (IPC), and/or user/kernel mode APIs. It alsomay include main memory that may be accessed by the CPU, by DMA fromdevices, or both. It also shows protection mechanisms including hardwareCPU virtualization protection mechanisms, and hardware virtualizationDMA protection mechanisms. Instruction execution detection/interceptionmechanisms 500, 599 such as API call interception/simulation mechanismsmay reside within corresponding Virtualization Assistance Layers 400,499

Such resources, explained here by way of example, not limitation, mayinclude a subset of (a) hardware platform resources 600, virtualizedhardware platform resources (hardware platform resources 600 subject tofurther constraint by the separation kernel hypervisor 100, the hardwareCPU virtualization protection mechanisms 602, and/or the hardwarevirtualization DMA protection mechanisms 601), and execution time on aCPU 700 (or a plurality of CPUs, e.g., 700 to 731) (scheduling timeprovided by the separation kernel hypervisor 100), and space (memory 900provided by the separation kernel hypervisor) within which the guestoperating system 300 may instantiate and utilize constructs of theparticular guest operating system 300, such as a privileged (“kernel”space) modes of execution, non-privileged (“user” space) modes ofexecution, code and data for each such mode of execution (e.g.,processes, tasks, threads, interrupt handlers, drivers, signal handlers,inter process communication mechanisms, shared memory, shared APIsbetween such entities/contexts/modes, etc.

FIG. 5 is a block diagram illustrating an exemplary system andseparation kernel hypervisor architecture consistent with certainaspects related to the innovations herein. FIG. 5 shows an illustrativeimplementation as may be associated with FIG. 2, FIG. 3, and/or FIG. 4,where the instruction execution detection/interception mechanisms, thatmay be within the virtualization assistance layer, may include thefollowing monitoring systems and mechanisms: memory monitor, aninstruction monitor, etc. FIG. 5 also illustrates import/exportmechanism that may be used by a virtualization assistance layer and/orinstruction execution detection/interception mechanisms to communicatebetween themselves and other virtualization assistance layer and/orinstruction execution detection/interception mechanisms in other guestoperating system virtual machine protection domains (subject to thesecurity policies established, maintained, and enforced by theseparation kernel hypervisor), in an isolated, secure, and evenmonitored fashion.

FIG. 5 illustrates mechanism and resources that may be used by theinstruction execution detection/interception mechanisms 500 to monitor aguest operating system 300. Such mechanisms and resources may include amemory monitor 501, and an instruction monitor 502.

The virtualization assistance layer 400 and/or the instruction executiondetection/interception mechanisms 500 may also use an export API 509and/or an import API 599 (as may be configured and governed by theseparation kernel hypervisor 100), in order to provide securecommunication between a plurality of virtualization assistance layers(e.g., virtualization assistance layers 400 to 499) and/or a pluralityof instruction execution detection/interception mechanisms (e.g.,instruction execution detection/interception mechanisms 500 to 599).

Innovations set forth herein, as also described in additional detailelsewhere herein via notation to the reference numerals in thedescription below, reside around various combinations, subcombinationsand/or interrelated functionality of the following features or aspects:(i) a separation kernel hypervisor that ensures the isolation ofmultiple guest Operating Systems each in its own Virtual Machine (VM);(ii) a separation kernel hypervisor as in (i) that implements amechanism whereby a suitably authorized guest can send a list ofphysical memory locations to be watched to another guest; (iii) aseparation kernel hypervisor as in (i) that implements a mechanismwhereby each of the physical memory locations in (ii) is associated witha specification for what execution context information is to be obtainedon access to that location; (iv) a separation kernel hypervisor as in(i) that implements a mechanism whereby the specifications associatedwith the list of memory locations in (ii) can be sent to the other guestas in (ii); (v) a separation kernel hypervisor as in (i) that implementsa mechanism whereby the execution context specified in (iii) can be sentto the other guest as in (ii); (vi) a virtualization assistance layer(VAL) of software that runs within the same protection domain as theguest virtual machine but is not directly accessible by the guest; (vii)a virtualization assistance layer as in (vi) that implements a virtualmotherboard containing a virtual CPU and memory; (viii) a VAL as in (vi)that implements a mechanism to map physical memory pages asnon-executable; (ix) a VAL as in (vi) that processes exceptions causedby non-executable page execution attempts by its associated guestvirtual machine; (x) a VAL as in (vi) that implements a mechanism todetermine whether the address accessed is one of those specified in(ii); (xi) a VAL as in (vi) that can send a notification of the memoryaccess and associated context information as in (iii) to the requestingguest; (xii) a VAL as in (vi) that implements a mechanism receivecontext information as in (iii) from the requesting guest; (xiii) a VALas in (vi) that can replace the context information in its associatedvirtual machine; (xiv) a VAL as in (vi) that can pause the execution ofits virtual machine; and/or (xv) a VAL as in (vi) that can resume theexecution of its virtual machine.

Systems and mechanisms, and example embodiments, of the instructionexecution detection/interception mechanisms 500 may include:

1. Monitoring of CPU (and CPU cache based) guest OS memory access(originated from a plurality of resources available to the guestoperating system 300 (in FIGS. 3 and 4), including CPUs and/or cachesassigned and/or associated with such), as directed by execution andresources (shown in FIG. 3) within the guest OS 300. For memory assignedto the guest OS 300, such as a subset of the main memory 900 (in FIGS.2, 3, 4, and 5) the separation kernel hypervisor 100 may trap access tothat memory, and then pass associated data of that trap to thevirtualization assistance layer 400. The virtualization assistance layer400 may then pass the associated data of that trap to the instructionexecution detection/interception mechanisms 500.

The virtualization assistance layer 400, instruction executiondetection/interception mechanisms 500, and/or the separation kernelhypervisor 100 may use feedback mechanisms between themselves torecognize and monitor patterns of guest operating system 300 memoryaccess; not strictly one-off memory access attempts.

The monitoring of guest operating system 300 memory access includes, butis not limited to, constructs in guest operating system 300 memory(including the resources in the guest operating system 300 in FIGS. 3and 4) which may have semantics specific to a particular guest operatingsystem 300 or a set of applications hosted by the guest operating system300 (possibly including antivirus software).

The virtualization assistance layer 400, instruction executiondetection/interception mechanisms 500, and/or the Separation KernelHypervisor 100 may use feedback mechanisms between themselves torecognize and monitor patterns of Guest Operating System 300 DMA accessto memory; not strictly one-off access attempts. Illustrative aspects,here, are shown in FIGS. 6A-6B.

2. Monitoring of specific Guest Operating System 300 instructionexecution attempts, and/or specific instruction sequence executionattempts.

For all such attempts by the Guest Operating System 300, the SeparationKernel Hypervisor 100 (when configured to do so, or via feedback receivefrom the virtualization assistance layer 400 and/or the instructionexecution detection/interception mechanisms 500) may trap such accessattempts, then pass associated data of that trap to the virtualizationassistance layer 400 and/or instruction execution detection/interceptionmechanisms 500.

The virtualization assistance layer 400 and/or the instruction executiondetection/interception mechanisms 500 can respond to such instructionsequences; including, but not limited to, recognition of a significantfraction of a given sequence, then prevent/block the final instructionsof the malicious sequence from execution.

Illustrative aspects, here, are shown in FIGS. 7A-7B.

FIGS. 6A-6B are representative sequence and flow diagrams illustratingexemplary systems, methods and separation kernel hypervisor architectureconsistent with certain aspects related to the innovations herein. FIGS.6A-6B relate, inter alia, to behavior relating to the handling of guestoperating system attempts to access main memory.

Turning to the illustrative implementations/aspects of FIG. 6A, at step605 a Guest Operating System receives a command for memory access to aspecified memory location. Then, at step 610, the Guest Operating Systemattempts to execute code in the memory location(s). The memory usageattempt triggers entry into the separation kernel hypervisor. Then, atstep 620, the separation kernel hypervisor securely transitionsexecution to the virtualization assistance layer; in a manner isolatedfrom the Guest Operating System. Next, in step 630 the virtualizationassistance layer transitions execution to the instruction executiondetection/interception mechanisms. Step 630 may include and/or involveaspects (ii), (iv) and (viii), including aspect (ii) where theseparation kernel hypervisor implements a mechanism whereby a suitablyauthorized guest can send a list of memory locations to be watched toanother guest. A virtualization assistance layer (VAL) of software thatruns within the same protection domain as the guest Virtual Machine butis not directly accessible by the guest (aspect vi). The VAL thatprocesses unmapped memory exceptions taken by its associated guestvirtual machine (aspect viii). Then, at step 635 the instructionexecution detection/interception mechanisms analyze the behavior of theGuest Operating System and its resources and makes a policy decision; inthis example, it has been configured to understand the memory locationswhich are sensitive (e.g., involve API calls), thus decides to disallow,pause or continue the code execution. The instruction executiondetection/interception mechanism detects access or processing related tospecified memory locations, for example. Then, at step 655, theinstruction execution detection mechanism 500 transfers control to amemory management unit (MMU) control mechanism 600. This mechanism 600performs the memory management unit control operations need to executethe instruction(s) and map the appropriate page as non-executable.Additional details of the MMU functionality, here, are set forth furtherbelow in connection with FIG. 10. Then, at step 660, the MMU controlmechanisms transition execution to the instruction execution detectionmechanism. Next, at step 640 the instruction executiondetection/interception mechanisms transition execution to thevirtualization assistance layer, passing it the policy decision. Then,at step 645 the virtualization assistance layer transitions executionback to the Separation Kernel Hypervisor, or the Separation KernelHypervisor transitions execution from the virtualization assistancelayer back to the Separation Kernel Hypervisor. Next, at step 650 theSeparation Kernel Hypervisor acts on the policy decision generated bythe instruction execution detection/interception mechanisms (in oneexample, it intercepts API calls for simulation by the authorizedguest), or the Separation Kernel Hypervisor acts independently of thepolicy decision, but in a manner that takes the policy decision underadvisement (depending on configuration). The SKH may receive, analyze,and/or act upon policy decisions from multiple sources, which mayinclude multiple detection/notification mechanisms; including caseswhere multiple mechanisms monitor a given Guest OS.

As explained above in connection with FIG. 6A, the Guest OperatingSystem accesses a specified memory location. The memory access may bemonitored and identified as including API calls requiring interceptionvia the instruction execution detection/interception mechanism togenerate a policy decision. The memory access attempt triggers entryinto the Separation Kernel Hypervisor.

Turning to FIG. 6B, such system or process may initiate upon entry intothe SKH, at 660. Then, at 665, the Separation Kernel Hypervisor securelytransitions execution to the Visualization Assistance Layer; in a mannerisolated from the Guest Operating System. Next, at 670, theVisualization Assistance Layer transitions execution to the instructionexecution detection/interception mechanisms. The instruction executiondetection/interception mechanisms may then analyze, at 675, the behaviorof the Guest Operating System and its resources and makes a policydecision; for example, it may be configured to understand the memorylocations which are sensitive (e.g. handle the API calls forinterception), thus decides to deny, pause or continue the memoryprocessing/access attempt. At 676, the detection mechanism(s) maytransfer control to a memory management unit (MMU) control mechanism, toexecute the instruction(s) and re-map the appropriate page asnon-executable. Additional details of the MMU functionality, here, areset forth further below in connection with FIG. 10. Then, at 678, theMMU control mechanism(s) may transition execution to the detectionmechanism. Once the policy decision(s) have been made, the instructionexecution detection/interception mechanisms transition execution to thevirtualization assistance layer, at 680, passing it the policy decision.Then, at 685, the virtualization assistance layer transitions executionback to the separation kernel hypervisor, or the separation kernelhypervisor transitions execution from the virtualization assistancelayer back to the separation kernel hypervisor. Finally, at 690, theseparation kernel hypervisor acts on the policy decision generated bythe instruction execution detection/interception mechanisms (in thisexample, it may intercept/simulate the API call, and/or deny processingwith respect to the API call, although it may also allow or pause thememory access), or the Separation Kernel Hypervisor acts independentlyof the policy decision, but in a manner that takes the policy decisionunder advisement (depending on configuration). Further, the SKH mayreceive, analyze, and/or act upon policy decisions from multiplesources, which may include multiple mechanisms; inducing cases wheremultiple mechanisms monitor a given Guest OS.

FIGS. 7A-7B are representative sequence/flow diagrams illustratingexemplary systems, methods and Separation Kernel Hypervisor architectureconsistent with certain aspects related to the innovations herein. FIGS.7A-7B relate, inter alia, to behavior relating to an attempt to accessspecified API calls such as by the handling of guest operating systeminstruction sequences (e.g., execution attempts of a repeatedpattern/series of MOV, RET, or MOV IRET instruction on an Intel IA32earchitecture; such patterns of which may constitute code of “returnoriented” attacks/rootkits). Here, in such illustrative cases, memoryaccess within the guest operating system will attempt to corrupt and/orsubvert antivirus software and/or software integrity checkers within theguest operating system via a “return oriented” attack (attacksconstructed to evade integrity checkers); and the instruction executiondetection/interception mechanisms detects/prevents the attack.

Turning to the illustrative implementations/aspects of FIG. 7A, at step705, a Guest Operating System receives a command for memory access to aspecified memory location. Then at step 710 an attempt to process an APIcall such as a specific sequence and/or pattern of CPU instructions isperformed, that either triggers transition into the SKH for (2a) everyinstruction in the sequence and/or pattern (a single stepping behavior),or (2b) for a number of instructions of size greater than one of thesequence and/or pattern (multiple stepping). The (2a) or (2b) behavioris based on system configuration. Next, at step 715 the SeparationKernel Hypervisor securely transitions execution to the virtualizationassistance layer; in a manner isolated from the Guest Operating System.Then, at step 720 the virtualization assistance layer transitionsexecution to the instruction execution detection/interceptionmechanisms. Next, at step 725 the instruction executiondetection/interception mechanisms analyzes the behavior of the GuestOperating System and its resources and makes a policy decision. Then, atstep 750, the instruction execution detection/interception mechanism 500transfers control to a memory management unit (MMU) control mechanism700. This mechanism 700 performs the memory management unit controloperations need to execute the instruction(s) and map the appropriatepage as non-executable. Additional details of the MMU functionality,here, are set forth further below in connection with FIG. 10. Then Then,at step 755, the MMU control mechanisms transition execution to theinstruction execution detection mechanism. Then, the instructionexecution detection/interception mechanisms transition execution to thevirtualization assistance layer, at 730, passing it the policy decision.Next, at 735 the virtualization assistance layer transitions executionback to the Separation Kernel Hypervisor, or the Separation KernelHypervisor transitions execution from the virtualization assistancelayer back to the Separation Kernel Hypervisor. Then, in step 740 theSeparation Kernel Hypervisor acts on the policy decision generated bythe instruction execution detection/interception mechanisms (in thisexample it suspends the Guest OS, preventing the Guest OS from accessingthe memory and executing the “Return Oriented” attack; a type of attackthat thwarts code integrity checkers in the Guest OS), or the SeparationKernel Hypervisor acts independently of the policy decision, but in amanner that takes the policy decision under advisement (depending onconfiguration). The SKH may receive, analyze, and/or act upon policydecisions from multiple sources, which may include multiple mechanisms;including cases where multiple mechanisms monitor a given Guest OS.Finally, in step 745, in order to continue to recognize sequences and/orpatterns of instructions, execution may cycle a multiple times betweensteps 705 through 740.

As explained above in connection with FIG. 7A, the guest operatingsystem attempts specific memory access relating to an API call. Here,for example, the API call may involve a specified memory location. Theattempt triggers entry into the Separation Kernel Hypervisor.

Turning to FIG. 7B, such illustrative system or process may initiatesupon entry into the SKH, at 760. Then, at 765, the Separation KernelHypervisor securely transitions execution to the VisualizationAssistance Layer; in a manner isolated from the Guest Operating System.Next, at 770, the Visualization Assistance Layer transitions executionto the instruction execution detection/interception mechanisms. Theinstruction execution detection/interception mechanisms may thenanalyze, at 775, the behavior of the Guest Operating System and itsresources and makes a policy decision; in this example it recognizes theGuest Operating System instruction sequence and/or pattern as an attemptto process an API call, and the policy decision is to made to denyfurther (and/or future) execution of the sequence and/or pattern,preventing the Guest Operating System from providing the API call to themonitored guest. At 776, the detection mechanism(s) may transfer controlto a memory management unit (MMU) control mechanism, to execute theinstruction(s) and map the appropriate page as non-executable.Additional details of the MMU functionality, here, are set forth furtherbelow in connection with FIG. 10. Then, at 778, the MMU controlmechanism(s) may transition execution back to the detection mechanism.Once the policy decision(s) have been made, the instruction executiondetection/interception mechanisms transition execution to thevirtualization assistance layer, at 780, passing it the policy decision.Then, at 785, the virtualization assistance layer transitions executionback to the Separation Kernel Hypervisor, or the separation kernelhypervisor transitions execution from the virtualization assistancelayer back to the separation kernel hypervisor. Optionally, at step 790,the separation kernel hypervisor acts on the policy decision generatedby the instruction execution detection/interception mechanisms (in thisexample it denies processing of the API call), or the Separation KernelHypervisor acts independently of the policy decision, but in a mannerthat takes the policy decision under advisement (depending onconfiguration). Further, the SKH may receive, analyze, and/or act uponpolicy decisions from multiple sources, which may include multiplemechanisms; inducing cases where multiple mechanisms monitor a givenGuest OS. In a final step 795, in order to recognize sequences and/orpatterns of instructions (and/or further monitor an existing monitoredsequence and/or pattern of instructions), execution may cycle a multipletimes between steps 760 through 790.

FIGS. 8 and 9 are representative sequence/flow diagrams illustratingexemplary systems, methods, and separation kernel hypervisorarchitecture consistent with certain aspects related to the innovationsherein. FIGS. 8 and 9 relate, inter alia, to the guest operating systemattempting to access a specified memory location where the detectionmechanisms monitors, detects, and notifies the access and determines anaction in response to the detected access.

Turning to the illustrative implementations/aspects of FIG. 8, at step805, a Monitored Guest Operating System 300 attempts to access a memorylocation. Then, at step 815, the request to access the memory locationis sent to the SKH. The separation kernel hypervisor 100 that ensuresthe isolation of multiple guest Operating Systems each in its ownvirtual machine (VM) (step i). Another Monitored Guest Operating System600 allows a suitably authorized Monitoring Guest 600 to send 830 a listof physical memory locations to be monitored for another guest 300 (stepii). Furthermore, each of the physical memory locations may beassociated with a specification for the execution context information tobe obtained upon access to the memory location(s) (step iii). A responsefrom the SKH 100 is provided to the Monitored Guest Operating System 600at step 600. Next, at step 820 the separation kernel hypervisor securelytransitions execution to the virtualization assistance layer 400 in amanner isolated from the Guest Operating System. Step iv sends the otherguests the specification associated with the list of memory locations.Step v includes the SKH 100 that implements a mechanism where theexecution context information specified is sent to the other guests. Avirtualization assistance layer 400 of software runs within the sameprotection domain as the guest virtual machine but is not directlyaccessible by the guest (step vi). Step (vii) includes a virtualizationassistance layer 400 that implements a virtual motherboard containing avirtual CPU and memory. Step (viii) of the VAL 400 implements amechanism to map physical memory pages as non-executable. Step (ix) ofthe VAL 400 processes exceptions caused by non-executable page executionattempts by its associated guest virtual machine. Step (x) of the VAL400 determines whether the memory address accessed is one of thosespecified in feature (ii) in the list of physical memory locations sentto another guest. Step (xi) of the VAL 400 sends a notification of thememory access and associated context information as in step (iii) to therequesting guest. Step (xii) of the VAL 400 receives context informationas in (iii) from the requesting guest. Step (xii) of the VAL 400replaces the context information in its associated virtual machine. Step(xiv) of the VAL 400 pauses the execution of its virtual machine. Step(xv) of the VAL 400 resumes the execution of its virtual machine

Then, at step 840, the virtualization assistance layer transitionsexecution to the instruction execution detection/interception mechanisms500. Next, the instruction execution detection/interception mechanismsanalyze the behavior of the guest operating system and its resources andmakes a policy decision. Here, for example, at 851, the instructionexecution detection mechanism 500 may transfer control to a memorymanagement unit control mechanism 800. This mechanism 800 may performmemory management unit (MMU) control operations needed to execute theinstruction(s) and map the appropriate page as non-executable.Additional details of the MMU functionality, here, are set forth furtherbelow in connection with FIG. 10. After this, at step 855, the MMUcontrol mechanisms transition execution to the instruction executiondetection mechanism. Then, the instruction executiondetection/interception mechanisms transition execution to thevirtualization assistance layer, at 845, passing to it the policydecision. Next, at 825 the virtualization assistance layer transitionsexecution back to the separation kernel hypervisor, or the separationkernel hypervisor transitions execution from the virtualizationassistance layer back to the Separation Kernel Hypervisor. At step 810,the SKH 100 transitions execution to the monitored guest operatingsystem 300 based on the policy decision. At step 825, the separationkernel hypervisor acts on the policy decision generated by theinstruction execution detection/interception mechanisms, or theseparation kernel hypervisor acts independently of the policy decision,but in a manner that takes the policy decision under advisement(depending on configuration). The SKH may receive, analyze, and/or actupon policy decisions from multiple sources, which may include multiplecode execution mechanisms; including cases where multiple mechanismsmonitor a given Guest OS. Then, in order to continue to recognizesequences and/or patterns of memory access, execution may cycle amultiple times between steps 805 through 850.

As explained above in connection with FIG. 8, the guest operating systemexecutes code at a specified memory location, obtains and replacesexecution context information from the monitored guest. The attempttriggers entry into the separation kernel hypervisor for monitoring,detection, notification and/or interception.

Turning to FIG. 9, such illustrative system or process begins at step905 where a hypervisor is configured to allow a guest (monitoring guest)to request notifications of code execution by another guest (monitoredguest). The monitoring guest requests that a set of physical memorylocations be monitored for code execution, and the execution contextdata be returned on such access, at step 910. At 912, the detectionmechanism(s) may transfer control to a memory management unit (MMU)control mechanism, to execute the instruction and re-map the appropriatepage or call as non-executable. Additional details of the MMUfunctionality, here, are set forth further below in connection with FIG.10. Then, at 914, the MMU control mechanism(s) may transition executionto the detection mechanism. The VAL in the monitored guest maps thephysical pages containing those locations as non-executable, at step915. This is distinct from the monitored guest's notion of pagemappings. At step 920, when software in the monitored guest attempts toexecute code in such a page, control transitions to the VAL. The VALdetermines that the address being executed is part of the set to bemonitored, at step 925. The VAL pauses the execution of the monitoredguest, at step 930. The VAL notifies the monitoring guest of the accessand provides the monitoring guest with the execution context data asconfigured for that access, at step 935. The monitoring guest thenperforms computation based on the execution context data, at step 940.The monitoring guest creates a new execution context, at step 945, whichmay be the same as the original execution context. This new executioncontext is sent to the VAL, at step 950. The VAL stores the newexecution context into the guest and resumes execution of the guest withthe new context at step 955. The monitored guest is allowed to continueoperation at step 960 as though the page has always been mappedexecutable.

FIG. 10 is an exemplary state diagram illustrating aspects of memorymanagement unit processing in conjunction with the hypervisor and VAL,consistent with certain aspects related to the innovations herein. InFIG. 10, control is passed to the Memory Management Unit (MMU) Control1019 via any of the following control paths 1005 including step 655(from FIG. 6A), step 755 (from FIG. 7A), and step 851 (from FIG. 8).Step 1015 transitions control from the Memory Management Control Unit1010 to the detection mechanisms 1020 to make a policy decisionregarding the page of memory the GuestOS had attempted to access. Thedetection mechanisms 1020 execute a policy decision to either deny orallow the GuestOS to access the memory. In step 1025, the detectionmechanisms 1020 execute the decision to allow the GuestOS access to thememory.

The detection mechanisms may transition execution to the VAL 1035 with arequest that the page of memory the GuestOS had attempted to access beremapped (mapped as accessible) to the GuestOS at step 1030.

The VAL may then transition execution to the SKH with a request that thepage of memory the GuestOS had attempted to access be remapped (mappedas accessible) to the GuestOS at step 1040. The SKH executes a policydecision at step 1045 to allow or deny the request that the page ofmemory the GuestOS had attempted to access be remapped (mapped asaccessible) to the GuestOS. In an exemplary embodiment, the SKH allowsthe request to map the memory page as accessible to the GuestOS.

The SKH may transition execution back to the VAL at step 1050 with amessage that the memory page that the GuestOS had attempted to accesshas been remapped (mapped as accessible) to the GuestOS. The VALtransitions execution back to the detection mechanisms 1020 at step 1055with a message that the memory page that the GuestOS had attempted toaccess has been remapped (mapped as accessible) to the GuestOS.

At step 1060, the detection mechanisms 1020 execute a policy decision toeither allow or deny the GuestOS to complete the execution of thecommand/instruction that the GuestOS had attempted which had triggeredthe GuestOS access attempt to the memory page.

At step 1065, the detection mechanisms 1020 determine to allow theGuestOS to complete execution of the command/instruction that theGuestOS had attempted which had triggered the GuestOS access attempt tothe memory page. The detection mechanisms then transition execution tothe VAL 1035.

At step 1070, the VAL 1035 then transitions execution to the SKH with arequest to allow the GuestOS to complete execution command/instructionthat the GuestOS had attempted which had triggered the GuestOS accessattempt to the memory page. The SKH executes a policy decision at step1072 to allow or deny the GuestOS to complete execution of thecommand/instruction that the GuestOS had attempted which had triggeredthe GuestOS access attempt to the memory page. In this example, the SKHallows the GuestOS to complete the execution of thatcommand/instruction. At step 1074, the SKH securely transition executionto the GuestOS. At step 1076, the GuestOS completes execution of thecommand/instruction that the GuestOS had attempted which triggered theGuestOS access attempt to the memory page. At step 1078, the protectionmechanisms provided by the SKH trigger a transition back to the SKHimmediately after completion of the GuestOS command/instruction.

At step 1080, the SKH transitions execution back to the VAL 1035, with amessage that the GuestOS has completed execution of thecommand/instruction that the GuestOS had attempted which had triggeredthe GuestOS access attempt to the memory page. At step 1082, the VAL1035 transitions execution to the detection mechanisms 1020 with amessage that the GuestOS has completed execution of thecommand/instruction that the GuestOS had attempted which had triggeredthe GuestOS access attempt to the memory page. At step 1084, thedetection mechanisms 1020 determine whether to map the memory page asnonexecutable again. At step 1086, the detection mechanisms 1020 make atransition back to the VAL via any of the control paths including step600 (from FIG. 6A), step 750 (from FIG. 7A), and step 855 (from FIG. 8).

FIG. 11 is a representative flow diagram illustrating exemplarymethodology and separation kernel hypervisor processing concerningexception-related instructions consistent with certain aspects relatedto the innovations herein. Innovative processing, here, may occur in thecontext of hardware platform resources partitioned via a separationkernel hypervisor into a plurality of guest operating system virtualmachine protection domains. With regard to list(s) of memory locationsof an authorized guest provides to another guest, each physical memorylocation is associated with a respective specification of executioncontext information upon access to the each of the plurality of physicalmemory locations. A message of the specification may be transmitted tothe requesting guest, and execution context information may be providedto such other guest. As set forth elsewhere herein, a virtualizationassistance layer (VAL) may be provided including a virtualrepresentation of the hardware platform in each of the guest operatingsystem virtual machine protection domains such that the VAL is notdirectly accessible by the authorized guest.

Referring to FIG. 11, the virtualization assistance layer and detectionmechanism(s) may process exceptions caused by non-executable APIexecution attempts made by guest virtual machine(s) associated with theVAL. In processing and/or inserting such exception-causing instructions,various mechanisms may be employed. For example, a first mechanism maybe hosted, at 1135, to copy contents of the physical memory locationinto a private memory location. A second mechanism may then be hosted,at 1140, to overwrite the location with an instruction to trap into theseparation kernel hypervisor. At 1145, exceptions may then processed asa function of non-executable API execution attempts directed to theoverwritten location by the associated virtual machine. A thirdmechanism may also be hosted, at 1150, to determine whether the physicalmemory location is accessed. If access, processing or other specifiedconditions are detected, execution of the virtual machine may be pausedor resumed, at 1155. The overwritten instruction may then be replacedwith a stored copy, at 1160. The virtual machine is then allowed toexecute the instruction, at 1165, and trap back into the virtualizationassistance layer at 1170. The instruction may then be overwritten with atrapping instruction at 1175. Finally, a notification of memory accessand the specification may be sent to the requesting guest, at 1180.

At a high level, as may apply to the above examples, the actions takenon monitored activity may include policy based actions taken by, and/orcoordinated between, the Separation Kernel Hypervisor 100,virtualization assistance layer 400, and/or instruction executiondetection/interception mechanisms 500 Such actions may include and/orinvolve, though are not limited to any of the following: (1) preventingthe monitored activity; (2) allowing the monitored activity; (3)allowing the monitored activity, with instrumentation, and/or partialblocking. It may be that certain sub-sets of the activity arepermissible (by configuration policy), and that a portion of theactivity may be allowed and a portion blocked and/or substituted with aharmless surrogate; such as insertion of no-ops in malicious code torender malicious code inert. This may include run-time patching of CPUstate of a guest operating system 300, and/or any resources of the guestoperating system 300; (4) reporting on the monitored activity, possiblyexporting reports to other software in the system, or on remote systems;and/or (5) replay of the monitored activity.

With regard to (5), immediately above, in separation kernel hypervisor100 configurations supporting rewind of guest operating system 300state, the state of the guest operating system 300 can be rewound andthe monitored activity can be replayed and re-monitored (to a degree);e.g., if the instruction execution detection/interception mechanisms 500requires more systems resources, and/or to map more context of the guestoperating system 300, the instruction execution detection/interceptionmechanisms 500 may request a rewind, request more resources, thenrequest the replay of the monitored activity; so that the instructionexecution detection/interception mechanisms 500 may perform analysis ofthe monitored activity with the advantage of more resources. Systems andmethods of monitoring activity, as may be utilized by the separationkernel hypervisor 100, virtualization assistance layer 400, and/orinstruction execution detection/interception mechanisms 500; foractivities which may include guest operating system 300 activities,and/or separation kernel hypervisor 100, virtualization assistance layer400, and/or instruction execution detection/interception mechanisms 500activities (such as feedback between such components), including thoseactivities which may cause transition to the separation kernelhypervisor 100, virtualization assistance layer 400, and/or instructionexecution detection/interception mechanisms 500 include (but are notlimited to): synchronous mechanisms, bound to a specific instructionstream and/or sequence within a processor, CPU, or platform deviceand/or ABI, certain elements of which can be used to trap and/ortransition to/from the hypervisor. For example, instructions whichinduce trapping. Such events may be generated by the Separation KernelHypervisor 100, virtualization assistance layer 400, and/or instructionexecution detection/interception mechanisms 500.

The innovations and mechanisms herein may also provide or enable meansby which software and/or guest operating system vulnerabilities,including improper use of CPU interfaces, specifications, and/or ABIsmay be detected and/or prevented; including cases where software vendorshave implemented emulation and/or virtualization mechanisms improperly.

Implementations and Other Nuances

The innovations herein may be implemented via one or more components,systems, servers, appliances, other subcomponents, or distributedbetween such elements. When implemented as a system, such system maycomprise, inter alia, components such as software modules,general-purpose CPU, RAM, etc. found in general-purpose computers,and/or FPGAs and/or ASICs found in more specialized computing devices.In implementations where the innovations reside on a server, such aserver may comprise components such as CPU, RAM, etc. found ingeneral-purpose computers.

Additionally, the innovations herein may be achieved via implementationswith disparate or entirely different software, hardware and/or firmwarecomponents, beyond that set forth above. With regard to such othercomponents (e.g., software, processing components, etc.) and/orcomputer-readable media associated with or embodying the presentinventions, for example, aspects of the innovations herein may beimplemented consistent with numerous general purpose or special purposecomputing systems or configurations. Various exemplary computingsystems, environments, and/or configurations that may be suitable foruse with the innovations herein may include, but are not limited to:software or other components within or embodied on personal computers,appliances, servers or server computing devices such asrouting/connectivity components, hand-held or laptop devices,multiprocessor systems, microprocessor-based systems, set top boxes,consumer electronic devices, network PCs, other existing computerplatforms, distributed computing environments that include one or moreof the above systems or devices, etc.

In some instances, aspects of the innovations herein may be achieved vialogic and/or logic instructions including program modules, executed inassociation with such components or circuitry, for example. In general,program modules may include routines, programs, objects, components,data structures, etc. that perform particular tasks or implementparticular instructions herein. The inventions may also be practiced inthe context of distributed circuit settings where circuitry is connectedvia communication buses, circuitry or links. In distributed settings,control/instructions may occur from both local and remote computerstorage media including memory storage devices.

Innovative software, circuitry and components herein may also includeand/or utilize one or more type of computer readable media. Computerreadable media can be any available media that is resident on,associable with, or can be accessed by such circuits and/or computingcomponents. By way of example, and not limitation, computer readablemedia may comprise computer storage media and other non-transitorymedia. Computer storage media includes volatile and nonvolatile,removable and non-removable media implemented in any method ortechnology for storage of information such as computer readableinstructions, data structures, program modules or other data. Computerstorage media includes, but is not limited to, RAM, ROM, EEPROM, flashmemory or other memory technology, CD-ROM, digital versatile disks (DVD)or other optical storage, magnetic tape, magnetic disk storage or othermagnetic storage devices, or any other medium which can be used to storethe desired information and can accessed by computing component. Othernon-transitory media may comprise computer readable instructions, datastructures, program modules or other data embodying the functionalityherein, in various non-transitory formats. Combinations of the any ofthe above are also included within the scope of computer readable media.

In the present description, the terms component, module, device, etc.may refer to any type of logical or functional circuits, blocks and/orprocesses that may be implemented in a variety of ways. For example, thefunctions of various circuits and/or blocks can be combined with oneanother into any other number of modules. Each module may even beimplemented as a software program stored on a tangible memory (e.g.,random access memory, read only memory, CD-ROM memory, hard disk drive,etc.) to be read by a central processing unit to implement the functionsof the innovations herein. Or, the modules can comprise programminginstructions transmitted to a general purpose computer, toprocessing/graphics hardware, and the like. Also, the modules can beimplemented as hardware logic circuitry implementing the functionsencompassed by the innovations herein. Finally, the modules can beimplemented using special purpose instructions (SIMD instructions),field programmable logic arrays or any mix thereof which provides thedesired level performance and cost.

As disclosed herein, features consistent with the present inventions maybe implemented via computer-hardware, software and/or firmware. Forexample, the systems and methods disclosed herein may be embodied invarious forms including, for example, a data processor, such as acomputer that also includes a database, digital electronic circuitry,firmware, software, or in combinations of them. Further, while some ofthe disclosed implementations describe specific hardware components,systems and methods consistent with the innovations herein may beimplemented with any combination of hardware, software and/or firmware.Moreover, the above-noted features and other aspects and principles ofthe innovations herein may be implemented in various environments. Suchenvironments and related applications may be specially constructed forperforming the various routines, processes and/or operations accordingto the invention or they may include a general-purpose computer orcomputing platform selectively activated or reconfigured by code toprovide the necessary functionality. The processes disclosed herein arenot inherently related to any particular computer, network,architecture, environment, or other apparatus, and may be implemented bya suitable combination of hardware, software, and/or firmware. Forexample, various general-purpose machines may be used with programswritten in accordance with teachings of the invention, or it may be moreconvenient to construct a specialized apparatus or system to perform therequired methods and techniques.

Aspects of the method and system described herein, such as the logic,may also be implemented as functionality programmed into any of avariety of circuitry, including programmable logic devices (“PLDs”),such as field programmable gate arrays (“FPGAs”), programmable arraylogic (“PAL”) devices, electrically programmable logic and memorydevices and standard cell-based devices, as well as application specificintegrated circuits. Some other possibilities for implementing aspectsinclude: memory devices, microcontrollers with memory (such as EEPROM),embedded microprocessors, firmware, software, etc. Furthermore, aspectsmay be embodied in microprocessors having software-based circuitemulation, discrete logic (sequential and combinatorial), customdevices, fuzzy (neural) logic, quantum devices, and hybrids of any ofthe above device types. The underlying device technologies may beprovided in a variety of component types, e.g., metal-oxidesemiconductor field-effect transistor (“MOSFET”) technologies likecomplementary metal-oxide semiconductor (“CMOS”), bipolar technologieslike emitter-coupled logic (“ECL”), polymer technologies (e.g.,Silicon-conjugated polymer and metal-conjugated polymer-metalstructures), mixed analog and digital, and so on.

It should also be noted that the various logic and/or functionsdisclosed herein may be enabled using any number of combinations ofhardware, firmware, and/or as data and/or instructions embodied invarious machine-readable or computer-readable media, in terms of theirbehavioral, register transfer, logic component, and/or othercharacteristics. Computer-readable media in which such formatted dataand/or instructions may be embodied include, but are not limited to,non-volatile storage media in various forms (e.g., optical, magnetic orsemiconductor storage media), though do not include transitory mediasuch as carrier waves.

Unless the context clearly requires otherwise, throughout thedescription, the words “comprise,” “comprising,” and the like are to beconstrued in an inclusive sense as opposed to an exclusive or exhaustivesense; that is to say, in a sense of “including, but not limited to.”Words using the singular or plural number also include the plural orsingular number respectively. Additionally, the words “herein,”“hereunder,” “above,” “below,” and words of similar import refer to thisapplication as a whole and not to any particular portions of thisapplication. When the word “or” is used in reference to a list of two ormore items, that word covers all of the following interpretations of theword: any of the items in the list, all of the items in the list and anycombination of the items in the list.

Although certain presently preferred implementations of the inventionshave been specifically described herein, it will be apparent to thoseskilled in the art to which the inventions pertain that variations andmodifications of the various implementations shown and described hereinmay be made without departing from the spirit and scope of theinventions. Accordingly, it is intended that the inventions be limitedonly to the extent required by the applicable rules of law.

The invention claimed is:
 1. A method for processing informationsecurely, the method comprising: partitioning hardware platformresources via a separation kernel hypervisor into a plurality of guestoperating system virtual machine protection domains; isolating thedomains in time and space from each other; providing a list of memorylocations of an authorized guest to another guest; associating each of aplurality of physical memory locations with a respective specificationof execution context information upon access to the each of theplurality of physical memory locations; providing a message of thespecification to the another guest; providing the execution contextinformation to the another guest; providing a virtualization assistancelayer (VAL) including a virtual representation of the hardware platformin each of the guest operating system virtual machine protection domainssuch that the VAL is not directly accessible by the authorized guest,wherein the virtual representation comprises a virtual machine includinga virtual motherboard having a virtual CPU and memory; hosting amechanism to map physical memory pages as non-executable; processingexceptions to non-executable page execution attempts by the associatedvirtual machine; hosting another mechanism to determine whether thephysical memory locations are accessed; replacing the contextinformation in the virtual machine; pausing or resuming execution of thevirtual machine; and sending a notification of memory access and thespecification to a requesting guest.
 2. The method of claim 1, furthercomprising one or more of: providing a list of memory locations of anauthorized guest to another guest; associating each of a plurality ofphysical memory locations with a respective specification of executioncontext information upon access to the each of the plurality of physicalmemory locations; providing a message of the specification to theanother guest; providing the execution context information to theanother guest; and providing a virtualization assistance layer (VAL)including a virtual representation of the hardware platform in each ofthe guest operating system virtual machine protection domains such thatthe VAL is not directly accessible by the authorized guest.
 3. Themethod of claim 1 wherein the step of securely transitioning executionto the detection mechanism within the VAL in a manner isolated from theguest operating system includes: performing processing to transitioncontrol of the suspect behavior to a memory management control unit forhandling; and transitioning handling of the suspect code to aninstruction execution detection mechanism to process and handle thesuspect code back to the memory management control unit.
 4. The methodof claim 1 wherein the securely determining, via the detectionmechanism, the policy decision regarding the suspect behavior comprises:analyzing the behavior of the guest operating system and its resources;and processing unmapped page exceptions taken by the guest operatingsystem based on the unmapped pages.
 5. The method of claim 1 wherein thestep of securely transitioning execution to the detection mechanismwithin the VAL in a manner isolated from the guest operating systemincludes: performing processing to transition control of the suspectbehavior to a memory management control unit for handling; andtransitioning handling of the suspect code to an instruction executiondetection mechanism to process and handle the suspect code back to thememory management control unit.
 6. The method of claim 1, furthercomprising one or more of: hosting an unmapping mechanism to unmap thepage; and unmapping, via the unmapping mechanism, the page.
 7. Themethod of claim 1, further comprising one or more of: hosting aremapping mechanism to remap unmapped pages; transitioning execution tothe remapping mechanism; remapping, via the remapping mechanism, theunmapped pages as accessible; and transitioning, via the remappingmechanism, execution to the detection mechanism.
 8. The method of claim1, further comprising one or more of: hosting an unmapping mechanism tounmap specified pages on demand from the another guest; receiving, viathe unmapping mechanism, the demand to unmap the specified pages; andunmapping, via the unmapping mechanism, the specified pages.
 9. Themethod of claim 1, further comprising one or more of: hosting aremapping mechanism to remap unmapped pages; upon securely determining,via the detection mechanism, the policy decision, transitioningexecution to the remapping mechanism; remapping, via the remappingmechanism, the unmapped pages as accessible; and transitioning, via theremapping mechanism; execution to the detection mechanism.
 10. Themethod of claim 1, further comprising: implementing a separation kernelhypervisor that ensures isolation of multiple guest operating systems,wherein each guest operating system is isolated in its own virtualmachine.
 11. The method of claim 1, further comprising: implementing aseparation kernel hypervisor that implements a mechanism wherein anauthorized guest can send a list of memory locations and/or physicalmemory locations to be watched to another guest.
 12. The method of claim1 further comprising: hosting a second mechanism to overwrite thelocation with an instruction to trap into the separation kernelhypervisor; and processing an exception due to execution attempts of theoverwritten location by the associated virtual machine.
 13. The methodof claim 12 further comprising: hosting a third mechanism to determinewhether the physical memory location is accessed.
 14. The method ofclaim 13, further comprising: pausing or resuming execution of thevirtual machine; replacing the overwritten instruction with a storedcopy; and allowing the virtual machine to execute the instruction.
 15. Amethod for processing information securely, the method comprising:partitioning hardware platform resources via a separation kernelhypervisor into a plurality of guest operating system virtual machineprotection domains; isolating the domains in time and space from eachother; providing a list of memory locations of an authorized guest toanother guest; associating each of a plurality of physical memorylocations with a respective specification of execution contextinformation upon access to the each of the plurality of physical memorylocations; providing a message of the specification to the anotherguest; providing the execution context information to the another guest;and providing a virtualization assistance layer (VAL) including avirtual representation of the hardware platform in each of the guestoperating system virtual machine protection domains such that the VAL isnot directly accessible by the authorized guest; securely transitioningexecution to the detection mechanism within the VAL in a manner isolatedfrom the guest operating system, including: performing processing totransition control of suspect code to a memory management control unitfor handling; and transitioning handling of the suspect code to aninstruction execution detection mechanism to process and handle thesuspect code back to the memory management control unit.
 16. The methodof claim 15, further comprising one or more of: providing a list ofmemory locations of an authorized guest to another guest; associatingeach of a plurality of physical memory locations with a respectivespecification of execution context information upon access to the eachof the plurality of physical memory locations; providing a message ofthe specification to the another guest; providing the execution contextinformation to the another guest; and providing a virtualizationassistance layer (VAL) including a virtual representation of thehardware platform in each of the guest operating system virtual machineprotection domains such that the VAL is not directly accessible by theauthorized guest.
 17. The method of claim 15 wherein the securelydetermining, via the detection mechanism, the policy decision regardingthe suspect behavior comprises: analyzing the behavior of the guestoperating system and its resources; and processing unmapped pageexceptions taken by the guest operating system based on unmapped pages.18. The method of claim 15, further comprising one or more of: hostingan unmapping mechanism to unmap a page; and unmapping, via the unmappingmechanism, the page.
 19. The method of claim 15, further comprising oneor more of: hosting a remapping mechanism to remap unmapped pages;transitioning execution to the remapping mechanism; remapping, via theremapping mechanism, the unmapped pages as accessible; andtransitioning, via the remapping mechanism, execution to the detectionmechanism.
 20. The method of claim 15, further comprising one or moreof: hosting an unmapping mechanism to unmap specified pages on demandfrom the another guest; receiving, via the unmapping mechanism, thedemand to unmap the specified pages; and unmapping, via the unmappingmechanism, the specified pages.
 21. The method of claim 15, furthercomprising one or more of: hosting a remapping mechanism to remapunmapped pages; upon securely determining, via the detection mechanism,the policy decision, transitioning execution to the remapping mechanism;remapping, via the remapping mechanism, the unmapped pages asaccessible; and transitioning, via the remapping mechanism; execution tothe detection mechanism.
 22. The method of claim 15, further comprising:implementing a separation kernel hypervisor that ensures isolation ofmultiple guest operating systems, wherein each guest operating system isisolated in its own virtual machine.
 23. The method of claim 15, furthercomprising: implementing a separation kernel hypervisor that implementsa mechanism wherein an authorized guest can send a list of memorylocations and/or physical memory locations to be watched to anotherguest.
 24. The method of claim 15 further comprising: hosting a secondmechanism to overwrite the location with an instruction to trap into theseparation kernel hypervisor; and processing an exception due toexecution attempts of the overwritten location by the associated virtualmachine.
 25. The method of claim 24 further comprising: hosting a thirdmechanism to determine whether the physical memory location is accessed.26. The method of claim 25, further comprising: pausing or resumingexecution of the virtual machine; replacing the overwritten instructionwith a stored copy; and allowing the virtual machine to execute theinstruction.
 27. A method for processing information securely, themethod comprising: partitioning hardware platform resources via aseparation kernel hypervisor into a plurality of guest operating systemvirtual machine protection domains; isolating the domains in time andspace from each other; providing a list of memory locations of anauthorized guest to another guest; associating each of a plurality ofphysical memory locations with a respective specification of executioncontext information upon access to the each of the plurality of physicalmemory locations; providing a message of the specification to theanother guest; providing the execution context information to theanother guest; providing a virtualization assistance layer (VAL)including a virtual representation of the hardware platform in each ofthe guest operating system virtual machine protection domains such thatthe VAL is not directly accessible by the authorized guest, wherein thevirtual representation comprises a virtual machine including a virtualmotherboard having a virtual CPU and memory; hosting a mechanism to copythe contents of the physical memory address into a private memorylocation; hosting a mechanism to overwrite the address with aninstruction that will trap into the separation kernel hypervisor;processing exceptions due to execution attempts of the overwrittenaddress by the associated virtual machine; hosting another mechanism todetermine whether the physical memory locations are accessed; pausing orresuming execution of the virtual machine; replacing the over writteninstruction with the stored copy; allowing the virtual machine toexecute the original instruction; trapping back into the virtualizationassistance layer; overwriting the original instruction with a trappinginstruction; and sending a notification of memory access and thespecification to a requesting guest.
 28. The method of claim 27, furthercomprising one or more of: providing a list of memory locations of anauthorized guest to another guest; associating each of a plurality ofphysical memory locations with a respective specification of executioncontext information upon access to the each of the plurality of physicalmemory locations; providing a message of the specification to theanother guest; providing the execution context information to theanother guest; and providing a virtualization assistance layer (VAL)including a virtual representation of the hardware platform in each ofthe guest operating system virtual machine protection domains such thatthe VAL is not directly accessible by the authorized guest.
 29. Themethod of claim 27 wherein the step of securely transitioning executionto the detection mechanism within the VAL in a manner isolated from theguest operating system includes: performing processing to transitioncontrol of the suspect behavior to a memory management control unit forhandling; and transitioning handling of the suspect code to aninstruction execution detection mechanism to process and handle thesuspect code back to the memory management control unit.
 30. The methodof claim 27 wherein the securely determining, via the detectionmechanism, the policy decision regarding the suspect behavior comprises:analyzing the behavior of the guest operating system and its resources;and processing unmapped page exceptions taken by the guest operatingsystem based on unmapped pages.
 31. The method of claim 27 wherein thestep of securely transitioning execution to the detection mechanismwithin the VAL in a manner isolated from the guest operating systemincludes: performing processing to transition control of the suspectbehavior to a memory management control unit for handling; andtransitioning handling of the suspect code to an instruction executiondetection mechanism to process and handle the suspect code back to thememory management control unit.
 32. The method of claim 27, furthercomprising one or more of: hosting an unmapping mechanism to unmap apage; and unmapping, via the unmapping mechanism, the page.
 33. Themethod of claim 27, further comprising one or more of: hosting aremapping mechanism to remap unmapped pages; transitioning execution tothe remapping mechanism; remapping, via the remapping mechanism, theunmapped pages as accessible; and transitioning, via the remappingmechanism, execution to the detection mechanism.
 34. The method of claim27, further comprising one or more of: hosting an unmapping mechanism tounmap specified pages on demand from the another guest; receiving, viathe unmapping mechanism, the demand to unmap the specified pages; andunmapping, via the unmapping mechanism, the specified pages.
 35. Themethod of claim 27, further comprising one or more of: hosting aremapping mechanism to remap unmapped pages; upon securely determining,via the detection mechanism, the policy decision, transitioningexecution to the remapping mechanism; remapping, via the remappingmechanism, the unmapped pages as accessible; and transitioning, via theremapping mechanism; execution to the detection mechanism.
 36. Themethod of claim 27, further comprising: implementing a separation kernelhypervisor that ensures isolation of multiple guest operating systems,wherein each guest operating system is isolated in its own virtualmachine.
 37. The method of claim 27, further comprising: implementing aseparation kernel hypervisor that implements a mechanism wherein anauthorized guest can send a list of memory locations and/or physicalmemory locations to be watched to another guest.
 38. The method of claim27 further comprising: hosting a second mechanism to overwrite thelocation with an instruction to trap into the separation kernelhypervisor; and processing an exception due to execution attempts of theoverwritten location by the associated virtual machine.
 39. The methodof claim 38 further comprising: hosting a third mechanism to determinewhether the physical memory location is accessed.
 40. The method ofclaim 39, further comprising: pausing or resuming execution of thevirtual machine; replacing the overwritten instruction with a storedcopy; and allowing the virtual machine to execute the instruction.
 41. Amethod for processing information securely, the method comprising:partitioning hardware platform resources via a separation kernelhypervisor into a plurality of guest operating system virtual machineprotection domains; isolating the domains in time and space from eachother; providing a list of memory locations of an authorized guest toanother guest; associating each of a plurality of physical memorylocations with a respective specification of execution contextinformation upon access to the each of the plurality of physical memorylocations; providing a message of the specification to the anotherguest; providing the execution context information to the another guest;providing a virtualization assistance layer (VAL) including a virtualrepresentation of the hardware platform in each of the guest operatingsystem virtual machine protection domains such that the VAL is notdirectly accessible by the authorized guest, wherein the virtualrepresentation comprises a virtual machine including a virtualmotherboard having a virtual CPU and memory; and hosting a firstmechanism to copy contents of the physical memory location into aprivate memory location.
 42. The method of claim 41 further comprising:hosting a second mechanism to overwrite the location with an instructionto trap into the separation kernel hypervisor; and processing anexception due to execution attempts of the overwritten location by theassociated virtual machine.
 43. The method of claim 42 furthercomprising: hosting a third mechanism to determine whether the physicalmemory location is accessed.
 44. The method of claim 43, furthercomprising: pausing or resuming execution of the virtual machine;replacing the overwritten instruction with a stored copy; and allowingthe virtual machine to execute the instruction.
 45. The method of claim41, further comprising one or more of: providing a list of memorylocations of an authorized guest to another guest; associating each of aplurality of physical memory locations with a respective specificationof execution context information upon access to the each of theplurality of physical memory locations; providing a message of thespecification to the another guest; providing the execution contextinformation to the another guest; and providing a virtualizationassistance layer (VAL) including a virtual representation of thehardware platform in each of the guest operating system virtual machineprotection domains such that the VAL is not directly accessible by theauthorized guest.
 46. The method of claim 41 wherein the step ofsecurely transitioning execution to the detection mechanism within theVAL in a manner isolated from the guest operating system includes:performing processing to transition control of the suspect behavior to amemory management control unit for handling; and transitioning handlingof the suspect code to an instruction execution detection mechanism toprocess and handle the suspect code back to the memory managementcontrol unit.
 47. The method of claim 41 wherein the securelydetermining, via the detection mechanism, the policy decision regardingthe suspect behavior comprises: analyzing the behavior of the guestoperating system and its resources; and processing unmapped pageexceptions taken by the guest operating system based on unmapped pages.48. The method of claim 41 wherein the step of securely transitioningexecution to the detection mechanism within the VAL in a manner isolatedfrom the guest operating system includes: performing processing totransition control of the suspect behavior to a memory managementcontrol unit for handling; and transitioning handling of the suspectcode to an instruction execution detection mechanism to process andhandle the suspect code back to the memory management control unit. 49.The method of claim 41, further comprising one or more of: hosting anunmapping mechanism to unmap a page; and unmapping, via the unmappingmechanism, the page.
 50. The method of claim 41, further comprising oneor more of: hosting a remapping mechanism to remap unmapped pages;transitioning execution to the remapping mechanism; remapping, via theremapping mechanism, the unmapped pages as accessible; andtransitioning, via the remapping mechanism, execution to the detectionmechanism.
 51. The method of claim 41, further comprising one or moreof: hosting an unmapping mechanism to unmap specified pages on demandfrom the another guest; receiving, via the unmapping mechanism, thedemand to unmap the specified pages; and unmapping, via the unmappingmechanism, the specified pages.
 52. The method of claim 41, furthercomprising one or more of: hosting a remapping mechanism to remapunmapped pages; upon securely determining, via the detection mechanism,the policy decision, transitioning execution to the remapping mechanism;remapping, via the remapping mechanism, the unmapped pages asaccessible; and transitioning, via the remapping mechanism; execution tothe detection mechanism.
 53. The method of claim 41, further comprising:implementing a separation kernel hypervisor that ensures isolation ofmultiple guest operating systems, wherein each guest operating system isisolated in its own virtual machine.
 54. The method of claim 41, furthercomprising: implementing a separation kernel hypervisor that implementsa mechanism wherein an authorized guest can send a list of memorylocations and/or physical memory locations to be watched to anotherguest.